Posts by c0urier

Jeg tager en korrektur læsning senere

Good job MGAV.

Quote from veg-grower

Looks very interesting c0urier thanks

I would love to have a go at that tutorial as I am using Debian 6 32bit so it should work ok with that. I have heard a lot of good things about nginx and to have that with apache would be very interesting.

Thanks for the help. When I have set everything up again on my VPS I will try it out and let you know how it went if it does not work for me then its no problem but I will have a good go at getting it to work

Thanks again most appreciated.

Display More

No problem and I hope it will work out for you. If you experience any problems, feel free to drop a post and we'll see if we can help.

Quote from trisztan

Appinstaller not working in sub-domain. So i installed wordpress i got error message: installed.

Please create a new thread for this error. It does not belong in this thread.

Hi veg-grower,

I myself use i-MSCP + Apache2 and NGiNX as proxy, it gives a huge performance boost on static files. Same as the resources used by the server has been decreased by 25-50% on certain tasks.

It will soon be incl. as an option in i-MSCP.
If you'd like to give it a go, you can try the write up I did:
http://www.c0urier.net/2013/i-mscp-nginx-proxy

There is no guarantee it will work for you, but I know it has worked for others incl. me and Laurent (Nuxwin).

Quote from Menaxerius

So I hope I did everything right. I get now:

Loaded Modules:
core_module (static)
log_config_module (static)
logio_module (static)
mpm_worker_module (static)
http_module (static)
so_module (static)
actions_module (shared)
alias_module (shared)
auth_basic_module (shared)
authn_file_module (shared)
authz_default_module (shared)
authz_groupfile_module (shared)
authz_host_module (shared)
authz_user_module (shared)
autoindex_module (shared)
cgi_module (shared)
cgid_module (shared)
deflate_module (shared)
dir_module (shared)
env_module (shared)
fcgid_module (shared)
mime_module (shared)
negotiation_module (shared)
proxy_module (shared)
proxy_http_module (shared)
reqtimeout_module (shared)
rewrite_module (shared)
setenvif_module (shared)
ssl_module (shared)
status_module (shared)
suexec_module (shared)

Is this ok?

Mena

Display More

Looks good now.

Are you still receiving 403 errors?

Looks good now.

Are you still receiving 403 errors?

Rediscovered security bug in most releases of NGiNX.

A quote from the NGiNX team:

Quote

A security problem related to CVE-2013-2028 was identified,
affecting some previous nginx versions if proxy_pass to
untrusted upstream HTTP servers is used.

The problem may lead to a denial of service or a disclosure of a
worker process memory on a specially crafted response from an
upstream proxied server.

The problem affects nginx 1.1.4 - 1.2.8, 1.3.0 - 1.4.0.

The problem is already fixed in nginx 1.5.0, 1.4.1. Version 1.2.9
was released to address the issue in the 1.2.x legacy branch.

Patch for nginx 1.3.9 - 1.4.0 is the same as for CVE-2013-2028:

http://nginx.org/download/patch.2013.chunked.txt

Patch for older nginx versions (1.1.4 - 1.2.8, 1.3.0 - 1.3.8)
can be found here:

http://nginx.org/download/patch.2013.proxy.txt

Display More

Debian bug report is filed as well:
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=708164

I'll keep this thread updated with info, as soon as new arrive.

So you're running mod_evasive and it looks like this causes the problem.

Disable it and restart Apache, see if the problem persists.

Looks fine with the WP installation.

Please give me the output of: apachectl -M

Are you by any chance running mod_evasive or mod_security or some wordpress security module?

You can use: apachectl -M